Apple Warns of 3 New Vulnerabilities Affecting iPhone, iPad, and Mac Devices
Apple has announced three new vulnerabilities impacting iOS, iPadOS, and macOS devices
Read More...
Fortinet fixes critical RCE flaws in FortiNAC and FortiWeb
Fortinet has released security updates for its FortiNAC and FortiWeb products, addressing two critical-severity vulnerabilities that may allow unauthenticated attackers to perform arbitrary code or command execution
Read More...
Citrix fixes severe flaws in Workspace, Virtual Apps and Desktops
The addressed security problems are categorized as high-severity and could enable attackers with local access to the target to elevate their privileges and take control of the affected system
Read More...
Microsoft February 2023 Patch Tuesday fixes 3 exploited zero-days, 77 flaws
Nine vulnerabilities have been classified as 'Critical', allowing remote code execution on vulnerable devices
Read More...
Atlassian warns of critical Jira Service Management auth flaw
The security issue affects versions 5.3.0 through 5.5.0 - hackers can get access to a Jira Service Management instance under certain circumstances
Read More...
QNAP fixes a critical bug that lets hackers inject malicious code
The vulnerability is tracked as CVE-2022-27596 and rated by the company as 'Critical' (CVSS v3 score: 9.8), impacting QTS 5.0.1 and QuTS hero h5.0.1 versions of the operating system
Read More...
VMware Releases Patches for Critical vRealize Log Insight Software Vulnerabilities
Two of the flaws are critical, carrying a severity rating of 9.8 out of a maximum of 10, the virtualization services provider noted in its first security bulletin for 2023
Read More...
Critical ManageEngine RCE bug now exploited to open reverse shells
Exploitation was observed across organizations as early as January 17, 2023 (UTC)
Read More...
Over 4,000 Sophos Firewall devices vulnerable to RCE attacks
Despite already being exploited as a zero-day, a CVE-2022-3236 proof-of-concept exploit is yet to be published online
Read More...
Cisco warns of auth bypass bug with public exploit in EoL routers
Cisco warned customers today of a critical authentication bypass vulnerability with public exploit code affecting multiple end-of-life (EoL) VPN routers
Read More...